Complete Certificate Authority (ADCS) Server 2016 Course

Name: Complete Certificate Authority (ADCS) Server 2016 Course
Rating: 3.8 (127 reviews)

Get the practical knowledge of configuring Certificate Authority

Created byVincent Olagbemide

Last updated 11/2023

English

What you'll learn

Configure digital certificate for users and computers manually or automatically
Configure Key Recovery Agent to recover lost certificate keys
Build an Offline Root & Subordinate Certificate Authority for any Enterprise networks
Configure Certificate Web Enrolment Service and Policy for any Enterprise network
Configure Network Device Enrolment Service for any enterprise network

Course content

3 sections • 31 lectures • 2h 21m total length

Introduction1:51
Digital Certificate, Public Key Cryptography, Private and Public Key (Explained)4:15
Use cases for ADCS on Windows Server4:29
Learn to issue PKI certificates with Active Directory Certificate Services on Windows Server for securing servers and computers. Explore VPN certificates, code signing, and digital signatures for authenticated communications.
Lab Server Setup10:33
If you have little knowledge on how to set up a domain controller or join your computers to a domain. Please watch the following extra videos.
Watch Video on How to Install and Configure Active Directory: https://www.youtube.com/watch?v=nn8We7_5LEU
Watch Video on How to join Computer to a Domain Controller: https://www.youtube.com/watch?v=EfyhhJaOhTs
Upgrade Server 2008 to Server 2012 or 2016: https://www.youtube.com/watch?v=QUHV9rqnA-o
Installing the Certificate Authority Role2:35

Configuring Manual Enrollment Certificates for Users Accounts6:21
Create user accounts in a new domain and configure a certificate template with one-year validity for domain users. Test the manual enrollment workflow from a client PC to verify issuance.
Issuing a Manual Certificate to User Accounts4:04
Configuring Manual Enrollment Certificates for Computer Accounts2:47
Issuing Certificate to a Computer in the domain3:05
Configuring Auto Enrollment of Certificates4:42
Configure auto enrollment of certificates by enabling public key policies in group policy, then update domain policies and verify user certificate enrollment on client machines.
Testing Auto Enrolled Certificate2:37
Configuring Key Recovery Agent4:11
Configure key recovery agents in the ADCS server 2016, create a dedicated key recovery agent user, and issue a certificate template to support recovering a lost key.
2 - Issuing and Exporting Key Recovery Agent Certificate11:51
Adding Key Recovery Agent Certificate to CA4:04
User loosing certificate Scenario2:42
Examine how a user loses a certificate in an ADCS 2016 environment, including compromised accounts, a lost certificate, and recovery via the key recovery agent account.
Recovering the Lost Certificate7:29
Discover how to recover a lost certificate in an ADCS environment by signing in with the recovery agent, locating the archived key in the central store, and importing the certificate.
Issuing recovered certificate to User1:49

Installing and Configuring the Root CA Server3:54
Installing and Configuring the Issuing Subordinate CA Part 11:54
Configuring CDP and AIA in Root CA Server4:01
Publishing the CRL Distribution Point (CDP) & Authority Information Access (AIA)6:38
Configuring Group Policy for Certificates in the domain3:38
6 - Configuring the Issuing Subordinate CA Part 26:44
Installing CA Certificate to Subordinate CA2:57
Install a certificate on a subordinate certificate authority using the management console, copy required files, configure the webroot and templates, and start services to complete the certificate setup.
Installing CES /CEP /Online Responder and NDES1:23
install ces, cep, online responder, and ndes to set up certificate services and begin the installation, followed by post-install configuration.
Configuring Service Account and CES/ CEP/ Online Responder and NDES8:23
Setting Up CES/ CEP7:22
4 - Configuring the Computer Account Certificate on an External or Public Client3:34
Configure the computer account certificate on an external or public client by importing the certificate, establishing trust, setting credentials, configuring the server agent, and validating policy.
5 - Configuring CA Security2:12
6 - Issuing a Web Server Certificate from our Subordinate CA4:41
Practice issuing a web server certificate from a subordinate CA by creating and managing certificate templates, configuring enrollment policies, and assigning permissions to enable automatic issuance to the web server.
Configuring Online Responders4:39

Requirements

Student should have knowledge of Active Directory and Computer Networking Concept

Description

Most employers want Network professionals who have complete knowledge of Digital network security including the practical know-how due to the increasing cyber-attack in recent times.

Computer Security Personnel or Security Specialists earn an average of $77,667 per year. Digital network security knowledge is a must to have.

Undertaking this boot-camp will equip you with the following knowledge;

Build a secured domain network issuing digital certificate to all users
Build a secured domain network issuing digital certificate to all computers
Configure Key Recovery Agent to recover lost certificate keys
Build an Offline Root Certificate Authority for any Enterprise network
Build a Subordinate Certificate Authority for any Enterprise network
Configure Certificate Web Enrolment Service for any Enterprise network
Configure Certificate Web Enrolments Policy for any Enterprise network
Configure Network Device Enrolment Service for any Enterprise network

If you want to also get into the cloud computing space, this is a great start as well, especially if you work with on-premises servers or systems.

Your company will be looking forward to getting into the cloud space by starting with the hybrid style. In this case, some services or servers will be migrated to the cloud will some still remain on-premises and you will be required to manage them.

In summary, investing your time and money into this bootcamp will go a very long way.

Who this course is for:

Network Engineers
Network Professionals
Security Specialist
System Administrators
Server Administrators
and more

Complete Certificate Authority (ADCS) Server 2016 Course

What you'll learn

Explore related topics

Course content

Introduction and Lab5 lectures • 24min

Basic ADCS Setup (Manual and Auto Enrollment)12 lectures • 56min

Advanced ADCS Setup (Offline Root and Subordinate CA)14 lectures • 1hr 2min

Requirements

Description

Who this course is for: